From owner-freebsd-isp@FreeBSD.ORG Wed Oct 8 07:15:51 2008 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id E0A4310656A0 for ; Wed, 8 Oct 2008 07:15:51 +0000 (UTC) (envelope-from technical@halenet.com.au) Received: from helen.halenet.com.au (helen.halenet.com.au [203.55.33.243]) by mx1.freebsd.org (Postfix) with ESMTP id 74CBD8FC26 for ; Wed, 8 Oct 2008 07:15:51 +0000 (UTC) (envelope-from technical@halenet.com.au) Received: from localhost (localhost.halenet.com.au [127.0.0.1]) by helen.halenet.com.au (Postfix) with ESMTP id BB5921EE8B9 for ; Wed, 8 Oct 2008 17:29:01 +1000 (EST) X-Virus-Scanned: amavisd-new at halenet.com.au Received: from helen.halenet.com.au ([127.0.0.1]) by localhost (helen.halenet.com.au [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zvhcR9igVPjb for ; Wed, 8 Oct 2008 17:29:01 +1000 (EST) Received: from hal (gw1.halenet.com.au [203.55.33.225]) by helen.halenet.com.au (Postfix) with ESMTPA id 5059F1EE8B4 for ; Wed, 8 Oct 2008 17:29:01 +1000 (EST) Message-ID: <0b6701c92915$ac7153d0$6500a8c0@hal> From: "lists" To: References: <009b01c928e9$fbe1f3b0$6500a8c0@hal> <48EC29B2.3010509@radel.com> Date: Wed, 8 Oct 2008 17:15:42 +1000 MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset="iso-8859-1"; reply-type=response Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3138 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3350 Subject: Re: ssh to remote machines using authorized keys X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Oct 2008 07:15:52 -0000 Thanks Jon > If you're going to do that a lot, you can set a default in > ~systemuser/.ssh/config to specify that all connections to root@remote > should default to using root's private key. If you don't mind I would like you to clarify the steps to address the config above The machine I am ssh ing from is local The machine I am ssh ing to is remote To do as above, do I create a .~ssh/config file with the following contents on the local machine and restart sshd /etc/rc.d/sshd restart Host remote.domainname #which is the connection name I am assuming User root Port 22 HostName remote.domainname # which is the hostname of the remote machine I am not sure what the permissions should be though. Do they need to be changed? do I need to change the /root/.ssh/id_rsa and id_rsa.pub to the systemuser? or should they stay the same. Or do I change the authorized_keys permissions The error I am getting is a permission denied which makes me think that I need to change some of the permissions. Currently the perms are 600 on both the /root/.ssh/id_rsa and id_rsa.pub and the /home/systemuser/authorized_keys Thanks and Regards Tim